Malware News

A new strain of malware called Gooligan has successfully breached over one million Google accounts, according to security researchers today. The "alarming" campaign uses malicious apps designed as real ones to gain control of accounts.

Security researchers have warned that a privilege-escalation bug found in the Linux operating system could be the "most serious" of its kind ever discovered. It has been present in the kernel for nine years and is being actively exploited by attackers.

Microsoft has warned customers that iOS is no more secure than Android, contradicting commonly held beliefs about the relative security of the two platforms. The company said that recent attacks targeting iOS prove it's as vulnerable as Android.

Spotify is inadvertently infecting users' computers with malware, according to a spate of reports from customers. The company's network has been compromised by malicious adverts that are displayed in the free version of the Spotify client.

Researchers have detailed a series of security risks in the Linux kernel that threaten to put the future of the Internet of Things at risk. Developers told the 2016 Linux Security Summit that Linux needs a "total rethink" to remain safe to use.

A security researcher has discovered a strain of Microsoft Office malware that utilises a simple but effective technique to evade detection by analysts. While it is relatively unsophisticated, it points to the future challenges of combating cybercrime.

A potentially devastating new ransomware discovered in the wild goes to new lengths to convince you to pay up. After encrypting your entire hard drive, Mamba overwrites your PC's master boot record, preventing it from starting Windows.

Australia's Victoria Police Force has warned homeowners not to use USB sticks being dropped through the mailboxes of one Melbourne suburb. It comes after a recent flood of reports from members of the public who have found compromised unmarked drives.

Apple has released a critical security update for iOS that contains patches for three of the most serious flaws ever discovered in the software. A successful exploit has been found in the wild, giving hackers complete access from a single text message.

Security researchers have discovered a severe form of malware that is spreading quickly through Google's online ad network. Targeting Android users, the malware downloads as soon as a user visits a page with an infected ad, making it a serious threat.

A major vulnerability in Linux has been discovered that allows hackers to intercept connections to websites and inject malicious code into their source. It affects several major publishers, giving attackers an easy way to infect machines.

A sinister form of malware known as Project Sauron has been spying on computers at major organisations, including governments, for over five years, according to researchers. It has been named 'Sauron' after Lord of the Rings references in its source code.

A ransomware campaign currently doing the rounds in the US has been dubbed the "world's lamest" after researchers discovered it doesn't create unique encryption keys. The single code is hidden "in plain sight," letting anyone recover their files for free.

Security researchers have warned that as many as 900 million Android phones are at risk of attack. Serious vulnerabilities found in Qualcomm's chipset drivers for its processors could give hackers complete control of devices and access to user data.

A new website set up by Europol, Intel and Kaspersky to help resist the threat of ransomware could allow you to recover encrypted data for free. The site is designed to stop people paying ransoms to malware creators as this makes the problem worse.

Google is debuting a new feature with Android 7.0 Nougat that prevents phones booting if modified software components are detected. Designed to prevent malware infecting the operating system's core, the company has admitted it could throw false positives.

Microsoft has patched a major flaw in all supported versions of Windows that allows hackers to install malware on your computer through the system print spooler. The vulnerability could give attackers an easy way to infect devices connected to a network.

Ransomware is a rapidly growing form of malware and is proving greatly effective. Not every piece of ransomware is the same though, as one recent discovery proved. A new scam circulating online leaves out the encryption, simply deleting all your files.

A report has found the number of malware infections this year has fallen significantly since 2015. It could suggest that people have become more vigilant about security in the wake of large cyber-attacks, or indicate a larger decline in cyber-crime.

A popular third-party keyboard for Android devices has been caught tracking user behaviour, displaying infected ads and communicating with unknown servers in China for surreptitious purposes. Security experts warned the app is essentially "malware."

Microsoft has warned Windows users that a new form of ransomware in the wild is dangerous and capable of self-reproducing. It propagates itself across removable and network drives, creating copies to infect as many files and devices as possible.

The creators of TeslaCrypt, one of the most successful ransomware campaigns to date, have released the encryption key used to lock victims' files, effectively shutting the malware down. There is now a free program available to decrypt affected data.

Yesterday, Microsoft announced that its free upgrade offer to Windows 10 will end on July 29. It has since confirmed that its "Get Windows 10" app for Windows 7 and 8.1 PCs will be removed after that date, ending a year of nagging upgrade reminders.

Millions of Android phones are putting their users at risk of call and text message snooping due to a critical security bug in the Qualcomm software that powers them. Phones built within the past five years are susceptible to the major issue.

A new form of malware using online advertisements to sneak ransomware onto Android devices has been discovered in the wild. The malware loads "Dogspectus" onto phones and doesn’t require any user interaction, operating completely silently.

Google's homepage at google.com is unsafe, according to the search giant's own safe browsing search tool. Google's Transparency Report named its own homepage as a domain that could be hosting malware and "deceptive content" used by hackers.

Google has released its annual Android security report for 2015, revealing that over 2.1 million devices were infected by malware present in the Play Store last year. Google's own store front is supposed to be a secure way to find new apps.

Google has rushed out a critical Android security update that fixes a bug that could allow attackers to compromise a phone using a malicious app in the Google Play Store. The fix will not be available on the majority of Android handsets though.

A number of major news sites have inadvertently hosted ransomware that could infect visitors' computers and permanently encrypt files. Publishers including the BBC, MSN and The New York Times are amongst those affected in the widespread campaign.